Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/348aRmylgwLE2tlJxF7NKh-qFMU.roa
File: 348aRmylgwLE2tlJxF7NKh-qFMU.roa (raw, json)
Hash identifier: 3LIhcnDXZ2OqEjMiQWQMaM4cJSDtfM+a1VM9sFr275w=
Subject key identifier: DF:8F:1A:46:6C:A5:83:02:C4:DA:D9:49:C4:5E:CD:2A:1F:AA:14:C5
Certificate issuer: /CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Certificate serial: 02C546
Authority key identifier: CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/348aRmylgwLE2tlJxF7NKh-qFMU.roa
Signing time: Tue 26 Apr 2022 13:54:20 +0000
ROA not before: Tue 26 Apr 2022 13:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 157.84.32.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181574 (0x2c546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccb75341500807a9750a8cf55bf4e45ff03f312a
Validity
Not Before: Apr 26 13:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df8f1a466ca58302c4dad949c45ecd2a1faa14c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:58:1a:39:7f:6c:b7:9c:49:44:80:f5:23:fd:
0b:e1:57:24:0f:a5:c8:46:92:50:c9:0f:2d:14:22:
ac:86:c6:b2:fb:8d:a6:bd:5f:2a:e3:8c:9f:b2:b1:
b9:69:cc:c4:6c:9b:c9:9c:2e:31:84:04:aa:12:47:
2d:ec:07:45:d7:21:7c:b9:fe:f3:41:92:8c:77:77:
28:54:40:59:ed:dc:07:81:e4:14:5c:fd:3f:17:c1:
da:e9:5f:d2:2b:90:88:a7:86:f3:ba:eb:5a:03:f9:
7b:f9:e2:50:cc:cf:c5:b6:24:1d:75:bc:9c:0d:b0:
5f:91:86:25:74:7d:2e:05:0f:9b:06:aa:de:8f:e9:
56:6e:8b:b9:61:84:0c:8e:80:d5:21:9d:d7:63:8e:
e5:86:79:c9:82:8d:3a:22:b6:ef:59:b4:b1:d4:c4:
31:d9:65:d8:a8:3f:79:79:5a:ff:f0:cc:78:c2:47:
2c:a1:37:c8:75:79:c7:de:fe:0d:65:6b:c8:1e:a2:
db:f2:6f:ae:8e:32:9f:18:60:99:e5:4f:63:eb:9d:
90:0f:09:02:eb:fe:df:b7:94:66:de:2f:c8:30:1d:
88:0b:e8:e0:cb:f4:ee:f7:e9:3b:d0:db:bf:49:58:
cc:85:c1:7e:f5:47:1a:94:2d:63:8c:76:94:0b:3b:
db:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:8F:1A:46:6C:A5:83:02:C4:DA:D9:49:C4:5E:CD:2A:1F:AA:14:C5
X509v3 Authority Key Identifier:
keyid:CC:B7:53:41:50:08:07:A9:75:0A:8C:F5:5B:F4:E4:5F:F0:3F:31:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zLdTQVAIB6l1Coz1W_TkX_A_MSo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/348aRmylgwLE2tlJxF7NKh-qFMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/effb2f-9fbf-488b-9315-a99a21015937/1/zLdTQVAIB6l1Coz1W_TkX_A_MSo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.84.32.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:29:2b:56:28:fe:7d:c3:d6:ed:0b:3d:93:2a:19:cf:d8:eb:
c1:ae:47:44:a5:77:b2:7b:58:88:0b:b0:a9:fa:37:84:dd:dd:
d7:fe:3a:54:59:bf:3b:a9:d3:e5:18:d5:53:b8:33:54:b5:fa:
f3:90:fb:0d:73:7f:34:d2:4e:2f:5b:11:8a:b5:f6:8c:98:f0:
f6:18:e2:68:19:ad:94:a1:97:db:83:b0:50:cf:4c:76:66:0b:
8e:19:6a:27:97:09:a0:dd:06:2a:48:99:50:50:c8:50:c4:cb:
9b:e3:60:1a:69:8f:a9:61:6f:90:5b:c5:fb:0e:71:4c:ac:3e:
52:6a:05:a9:d7:5e:d3:3d:55:e2:c1:01:57:dd:b9:89:6f:64:
0b:cb:7b:a5:84:96:34:56:b3:8c:97:31:dc:20:2f:15:e7:cf:
65:ec:39:79:96:24:44:94:c4:7f:5d:1e:ec:9f:cd:10:11:b9:
bb:c0:d9:8e:e6:e0:10:11:3d:21:ae:41:78:84:f3:f4:06:9b:
ba:bb:fe:ed:12:54:6e:c4:60:de:fe:16:b9:5b:2f:b3:e2:45:
59:ea:c7:1e:bb:33:c4:fe:c4:af:d1:2e:45:51:6f:5b:5c:5c:
a8:4b:14:07:85:95:5e:af:da:43:c0:6c:b4:2c:f2:c6:28:44:
11:ec:54:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:14 2024 by rpki-client on console-fra.rpki-client.org